XInput9_1_0[.]dll

General

Target

XInput9_1_0.dll
Size

25KB
MD5

79186f76982318d9c438323219464208
SHA1

d1790f0e6550d7ea1d50627060205968e6cdc44d
SHA256

8e3534e38725c51ea9f08340c580374f0eba8cfd4e6a83cf5bb741f518cd02ed
SHA512

77c0ece75ee3323959bffef39db197cb28cabdc131768ab656dbf9ec3c4405aa769d3c95144ebc9f25fb6cbd4b7c1c3e78b62a4a179369bdc1d77dbca6654b0d
SSDEEP

384:xSf1mAuvHFhnxQMPdUhMgN6jADBm1ZDeVHjIWFr/W7TMKJnL:bFPnq06lmX4HDEMKd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
XInput9_1_0.dll

Files

XInput9_1_0.dll
.dll windows:6 windows x86 arch:x86

56e489dbfbd84945407aef89508f4d97

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

XInput9_1_0.pdb

Imports

msvcrt

_except_handler4_common
_amsg_exit
_initterm
free
malloc
_XcptFilter
memcpy
_vsnwprintf
memset

kernel32

GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetLastError
GetCurrentThreadId
SetUnhandledExceptionFilter
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
CloseHandle
LocalFree
DuplicateHandle
GetCurrentProcess
LocalAlloc
LoadLibraryW
FreeLibrary
GetProcAddress
GetTickCount
CreateFileW
DeviceIoControl
InterlockedExchange
Sleep
InterlockedCompareExchange
QueryPerformanceCounter
UnhandledExceptionFilter

advapi32

TraceMessage
GetTraceEnableLevel
GetTraceLoggerHandle
RegisterTraceGuidsW
UnregisterTraceGuids
GetTraceEnableFlags

setupapi

SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailW
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsW

Exports

Exports

DllMain
XInputGetCapabilities
XInputGetDSoundAudioDeviceGuids
XInputGetState
XInputSetState

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 964B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

56e489dbfbd84945407aef89508f4d97

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msvcrt

kernel32

advapi32

setupapi

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 19KB

.data Size: 512B - Virtual size: 964B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 20KB - Virtual size: 19KB

.data
Size: 512B - Virtual size: 964B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB